Create a device protection policy with a Cloud Storage Definition target

The Cloud Storage Definitions must have been created beforehand. Predefined Cloud Storage Definitions are available for several cloud storage providers, for example Dropbox or Egnyte.
You define the settings to encrypt cloud storage data in a policy of the type Device Protection.
  1. In the Policies navigation area, create a new policy of the type Device Protection.
  2. Select a Cloud Storage Definition as a target.
  3. Click OK. The new policy is displayed in the navigation window below Policy Items. In the action area, all settings for the Device Protection policy are displayed and can be changed.
  4. For the Media encryption mode setting select File-based. Volume-based encryption is not supported.
  5. Under Algorithm to be used for encryption select the algorithm to be used for encrypting the data in the synchronization folders defined in the CSD.
  6. Settings Key to be used for encryption and Defined key for encryption are used to define the key or the keys that shall be used for encryption. For further information, see Device Protection.
  7. If you activate the Copy SG Portable to target setting, SafeGuard Portable is copied to each synchronization folder as soon as content is written to it. SafeGuard Portable is an application that can be used to read encrypted files on Windows computers that do not have SafeGuard Enterprise installed.
    Note: To share encrypted data stored in the cloud with users that do not have SafeGuard Enterprise installed, users should be allowed to create local keys, see Local keys.
  8. The Plaintext folder setting allows you to define a folder that will be excluded from encryption. Data stored in subfolders of the defined plaintext folder will also be excluded from encryption. SafeGuard Cloud Storage automatically creates empty plaintext folders in all synchronization folders defined in the Cloud Storage Definition.